How to remove duplicate AD users from IDCS
(Doc ID 2781823.1)
Last updated on JUNE 14, 2021
Identity Cloud Service (IDCS) - Version N/A to N/A Information in this document applies to any platform.
Example: If a user changes a filter they may have 5000 users, for example, and with the new filter only require 1500 users in IDCS.
When changing filters or mappings in AD bridge duplicate or additional users may exist in IDCS are no longer needed. IDCS customers are charged on a per users basis and if users being imported from AD are not users required in IDCS, the customer does not want to be charged for those users.
You may need to manually delete the users (or use REST APIs to delete those users) if there are duplicate or un-linked accounts in IDCS.
The only way the AD bridge will delete users is if they are linked in IDCS and REMOVED from AD.
The AD bridge will not remove users that still exist in AD for obvious reasons, mainly protection of customer data.
The customer can user REST APIs to remove users but not knowing which users to delete makes a very manual process.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!